Page 1

EventTracker www.EventTracker.com


Prism Microsystems • Founded in 1999 - HQ in Columbia, Maryland • EventTracker - Version 7: 10 years in development • 1,000+ Installations Worldwide – – – – –

Retail Healthcare Financial Services Insurance Government • US Federal Civilian and Defense • State and Local • International


About EventTracker • EventTracker – a dashboard of security and event information – – – – –

What is happening – Detect & avoid What has happened – Analyze & avoid What is different – Control & avoid Forensics, Search and Analytics Gov/DoD Compliance - FISMA, NISPOM, JAFAN, DIACAP – Commercial Compliance – FFIEC, GLBA, SOX, PCIDSS, HIPAA, etc.


Organizational IT Needs Security Security

Log Collection & Secure Archiving

SIEM

Cost Cost Savings

Compliance

Real-time Alerting

Automatic Remediation

Savings

Behavior Analysis

Log Management

File Integrity Monitoring

Files – Folders - Registries

Users & Admins

Servers & Desktops

Forensics Search & Reporting

Change Audit

Compliance Reports

Systems

Operations & Monitoring

Audit / Event Logs

Applications & Databases

USB & Media

Routers & Switches

Best Practices

Centralized View

Role-based Dashboards

Reporting Analytics Visualization

Config Assessment

AV IDS/IPS

IT Infrastructure

VM Ware

Mobile Devices


EventTracker • Secure Event Log Consolidation • Monitor/Alert - Risk Based Prioritization – Integrated with ISVMs: • Nessus, Rapid7, Qualys, Retina, SAINT

• • • • •

Event Correlation Engine (If this and THIS, then ALERT) Behavior Analysis and Anomaly Detection USB, CD-DVD File Copy/Burn Monitoring/Blocking User and Administrator Activity Tracking Log Search –

• • • •

Keyword, Advanced, Indexed/Trending, Category, Fuzzy SQL

Windows Change Audit Hypervisor (VMware, Hyper-V) Monitoring Configuration Assessment 1,000+ Pre-Configured Security and Compliance Reports


Risk-Based Incident Prioritization Low > Medium > High > Serious > Critical 3 Factor Algorithm Prioritizes Risk in Real Time

1. Event Type/Threat 2. Asset Value 3. CVSS Vulnerability Scan

Hundreds of “Alerts”

Millions of Events


EventTracker for the DoD • • • • • • • • • •

Common Criteria EAL 2+ US Army Certificate of Networthiness (CON) NIST SCAP certified for FDCC FIPS 140-2 Compliant Data Transmission HBSS Audit Log Monitoring FISMA/NISPOM/JAFAN – Compliance Reports Supports IP V6 Cloud/Virtual – VMWare/Hyper-V JITC Certification (in process) ESI (in process)


EventTracker installations include: • US Army - 40+ networks – Carl S. Dahlgren Medical Center Ft. Hood, TX – The Pentagon

• • • • • • • •

US Navy – SPAWAR/NAVSEA, 20+ networks USAF - 20+ networks Johns Hopkins University Applied Physics Lab NASA Greenbelt, MD NASA Johnson Space Flight Center US Dept. of State USDA (FSIS) Veterans Administration


Comprehensive Integrated Solution for Security, Operations andSolution Compliance Enterprise Class SIEM

• • • •

Log Management

File Integrity Monitoring

Systems

Operations & Monitoring

Reporting Analytics Visualization

Scalable across thousands of log sources Compressed and Secure Data Collection in TamperEvident Event Vault Powerful Reporting and Analytics Engine – Over 1,500 Pre-Built Reports Virtually No Impact on Monitored Clients – <0.01% CPU Utilization – <0.01% Network Utilization


EventTracker â&#x20AC;&#x201C; Scalable Software

Log Collection Log Search Event Knowledgebase Event Correlation Monitor/Alerting

Anomaly & Change Detection Compliance Reporting


Further Information Corporate Headquarters 8815 Centre Park Drive Columbia, MD 21045

Phone: Toll Free: (877) 333-1433 â&#x20AC;&#x201C; Option 1 Local: (410) 953-6776 Fax: (410) 953-6780

Email

Sales: sales@prismmicrosys.com Support: support@prismmicrosys.com Please visit our website today:

http://www.eventTracker.com

Prism Microsystems  

Team-Up Maryland #2 Presentation

Read more
Read more
Similar to
Popular now
Just for you